Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 

1-17. (Canceled) 

18. (Currently amended) A method of authenticating and authorizing a service request sent 
from a service client through a firewall to a service provider, comprising the steps of: 



service client on a communication channel, the service request having a digital certificate of the 
service client attached: 

using the service request filter, authenticating the digital certificate with an issuing 
certification authority; 

using the service request filter, extracting a service client identifier from the digital 
certificate associated with the service request; 

using the service request filter, storing the service client identifier in [[the]] a memory; 

using the service request filter, sending forwarding the service request to a web service 
manager; 

at the web service manager, responsive to receiving the service request, retrieving the 
service client identifier from the memory and sending an authentication request to a service 
client authentication program; 

responsive to receiving an authentication request from a web service manager at the 
service client authentication program , matching the service client identifier with a service client 




responsive to matching the service client identifier with the service client record, sending 
a request to a service authorization program for an authorization for the service request; 

at the service authorization program, determining if the service client identifier associated 
with the service request is authorized entitled to access the service provider; and 

responsive to determining that the service request is authorized client is entitled, 
returning a service authorization to the web service manager; 
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at the web service manager, routing the service request to authorizing the service provider 
to process the request; 

responsive to the service provider processing the request, returning an output to the web 
service manager . 

19. (Canceled) 

20. (Original) The method of claim 18 wherein the digital certificate is an X.509 digital 
certificate. 

21. (Original) The method of claim 18 wherein the service client identifier is a Distinguished 
Name. 

22. (Original) The method of claim 1 8 wherein the digital certificate is self-signed. 

23. (Original) The method of claim 18 further comprising the step of recording the service 
client identifier in an authorization log. 

24. (Original) The method of claim 18 further comprising the step of recording the service 
client identifier and service request in the authorization log. 
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